About | Projects | Docs | Forums | Lists | Bugs | Get Gentoo! | Support | Planet | Wiki
| | |
|
We produce Gentoo Linux, a special flavor of Linux that
can be automatically optimized and customized for just
about any application or need. Extreme performance,
configurability and a top-notch user and developer
community are all hallmarks of the Gentoo experience.
To learn more, read our about
page.
GLSA 201411-01: media-video/vlc
Posted on November 5, 2014
by Gentoo Security Team
VLC: Multiple vulnerabilities
Multiple vulnerabilities have been found in VLC, the worst of which
could lead to user-assisted execution of arbitrary code.
See GLSA 201411-01 for more information.
New Packages
Posted on November 5, 2014
by packages.gentoo.org
| dev-vcs/gitsh-0.8 | An interactive shell for git |
| app-misc/ltunify-0.2 | Tool for working with Logitech Unifying receivers and devices |
| dev-texlive/texlive-langkorean-2014 | TeXLive Korean |
| dev-texlive/texlive-langjapanese-2014 | TeXLive Japanese |
| dev-texlive/texlive-langchinese-2014 | TeXLive Chinese |
| dev-libs/libltdl-1.3.5 | A shared library tool for developers |
| dev-python/oslo-i18n-1.0.0 | oslo.i18n library |
| virtual/postgresql-9.0 | Virtual package to ease the transition to unified PostgreSQL ebuilds |
| app-i18n/fcitx-qt5-0.1.2 | Qt5 input module for Fcitx |
| dev-perl/Syntax-Highlight-Engine-Simple-Perl-0.20.0 | Experimental Perl code highlighting class |
Blog posts
Posted between November 5, 2014 and October 13, 2014
by planet.gentoo.org
| Aaron W. Swenson | EVE Online on Gentoo Linux |
| Andreas K. Hüttel | How do I run ~arch Perl on a stable Gentoo system? |
| Anthony Basile | Tor-ramdisk 20141022 released |
| Diego E. Pettenò | On professionalism (my first and last post explicitly about systemd) |
| Packaging for the Yubikey NEO, a frustrating adventure | |
| Setting up Yubikey NEO and U2F on Gentoo (and Linux in general) | |
| Gentoo Monthly Newsletter | Gentoo Monthly Newsletter: September 2014 |
| Jan Kundrát | Removal of the Ubuntu-Touch code from Trojita git |
| Luca Barbato | Tracking patches |
| Patrick Lauer | Just a simple weball, they said ... |
| Raúl Porcel | S390 documentation in the Gentoo Wiki |
| Sven Vermeulen | No more DEPENDs for SELinux policy package dependencies |
| Migrating to SELinux userspace 2.4 (small warning for users) |
GLSA 201410-02: perl-core/Locale-Maketext (and 1 more package)
Posted on October 12, 2014
by Gentoo Security Team
Perl, Perl Locale-Maketext module: Multiple vulnerabilities
Multiple vulnerabilities have been found in Perl Locale-Maketext
module, allowing remote attackers to inject and execute arbitrary Perl
code.
See GLSA 201410-02 for more information.
Blog posts
Posted between October 11, 2014 and October 6, 2014
by planet.gentoo.org
| Alexys Jacob | py3status v1.6 |
| Hanno Böck | How to stop Bleeding Hearts and Shocking Shells |
| Mike Pagano | Netflix on Gentoo |
GLSA 201410-01: app-shells/bash
Posted on October 4, 2014
by Gentoo Security Team
Bash: Multiple vulnerabilities
Multiple parsing flaws in Bash could allow remote attackers to
inject code or cause a Denial of Service condition.
See GLSA 201410-01 for more information.
GLSA 201409-10: app-shells/bash
Posted on October 4, 2014
by Gentoo Security Team
Bash: Code Injection (Updated fix for GLSA 201409-09)
A parsing flaw related to functions and environments in Bash could
allow attackers to inject code. The unaffected packages listed in GLSA
201409-09 had an incomplete fix.
See GLSA 201409-10 for more information.
GLSA 201409-09: app-shells/bash
Posted on October 4, 2014
by Gentoo Security Team
Bash: Code Injection
A parsing flaw related to functions and environments in Bash could
allow attackers to inject code.
See GLSA 201409-09 for more information.
Blog posts
Posted between October 4, 2014 and September 21, 2014
by planet.gentoo.org
| Anthony Basile | Lilblue Linux: release 20140925. Adventures beyond the land of POSIX. |
| sthttpd: a very tiny and very fast http server with a mature codebase! | |
| Tor-ramdisk 20140925 released | |
| Diego E. Pettenò | What does #shellshock mean for Gentoo? |
| Hanno Böck | New laptop Lenovo Thinkpad X1 Carbon 20A7 |
| Patrick Lauer | bcache |
| Sebastian Pipping | Unblocking F-keys (e.g. F9 for htop) in Guake 0.5.0 |
| Sven Vermeulen | After SELinux System Administration, now the SELinux Cookbook |
GLSA 201409-08: dev-libs/libxml2
Posted on September 19, 2014
by Gentoo Security Team
libxml2: Denial of Service
A vulnerability in libxml2 allows a remote attacker to cause Denial
of Service.
See GLSA 201409-08 for more information.
GLSA 201409-07: net-proxy/c-icap
Posted on September 19, 2014
by Gentoo Security Team
c-icap: Denial of Service
A vulnerability in c-icap could result in Denial of Service.
See GLSA 201409-07 for more information.
GLSA 201409-06: www-client/chromium
Posted on September 19, 2014
by Gentoo Security Team
Chromium: Multiple vulnerabilities
Multiple vulnerabilities have been found in Chromium, the worst of
which can allow remote attackers to cause Denial of Service.
See GLSA 201409-06 for more information.
GLSA 201409-05: www-plugins/adobe-flash
Posted on September 19, 2014
by Gentoo Security Team
Adobe Flash Player: Multiple vulnerabilities
Multiple vulnerabilities have been found in Adobe Flash Player, the
worst of which allows remote attackers to execute arbitrary code.
See GLSA 201409-05 for more information.
Blog posts
Posted between September 13, 2014 and August 29, 2014
by planet.gentoo.org
| Aaron W. Swenson | Unifying PostgreSQL Ebuilds |
| Gentoo Haskell Herd | ghc 7.8.3 and rare architectures |
| Gentoo Monthly Newsletter | Gentoo Monthly Newsletter: August 2014 |
| Luca Barbato | PowerPC is back (and little endian) |
| Michał Górny | Bash pitfalls: globbing everywhere! |
| Patrick Lauer | 32bit Madness |
| AMD HSA | |
| Sven Vermeulen | Showing return code in PS1 |
| Gentoo Hardened august meeting |
Gentoo Linux releases the 20140826 LiveDVD - Iron Penguin Edition
Posted on August 26, 2014
by likewhoa
Figure 1.1: Iron Penguin |
| |
Gentoo Linux is proud to announce the availability of a new LiveDVD to celebrate the continued collaboration between Gentoo users and developers, The LiveDVD features a superb list of packages, some of which are listed below.
A special thanks to the Gentoo Infrastructure Team and likewhoa. Their hard work behind the scenes provide the resources, services and technology necessary to support the Gentoo Linux project.
- Packages included in this release: Linux Kernel 3.15.6, Xorg 1.16.0, KDE 4.13.3, Gnome 3.12.2, XFCE 4.10, Fluxbox 1.3.5, LXQT Desktop 0.7.0, i3 Desktop 2.8, Firefox 31.0, LibreOffice 4.2.5.2, Gimp 2.8.10-r1, Blender 2.71-r1, Amarok 2.8.0-r2, Chromium 37.0.2062.35 and much more ...
- If you want to see if your package is included we have generated both the x86 package list, and amd64 package list. The FAQ is located at FAQ. DVD cases and covers for the 20140826 release are located at Artwork. Persistence mode is back in the 20140826 release!.
The LiveDVD is available in two flavors: a hybrid x86/x86_64 version, and an x86_64 multi lib version. The livedvd-x86-amd64-32ul-20140826 version will work on 32-bit x86 or 64-bit x86_64. If your CPU architecture is x86, then boot with the default gentoo kernel. If your arch is amd64, boot with the gentoo64 kernel. This means you can boot a 64-bit kernel and install a customized 64-bit user land while using the provided 32-bit user land. The livedvd-amd64-multilib-20140826 version is for x86_64 only.
If you are ready to check it out, let our bouncer direct you to the closest x86 image or amd64 image file.
If you need support or have any questions, please visit the discussion thread on our forum.
Thank you for your continued support,
Gentoo Linux Developers,
the Gentoo Foundation, and the
Gentoo-Ten Project.
Blog posts
Posted between August 22, 2014 and July 14, 2014
by planet.gentoo.org
| Alexys Jacob | Using uWSGI and Consul to design a distributed application |
| Andreas K. Hüttel | EAPI=5 adoption has reached 50% of ebuilds in the portage tree |
| Perl in Gentoo: Upgrading pains, perl-cleaner, and EAPI=5 | |
| Perl in Gentoo: dev-lang/perl, virtuals, and perl-core packages | |
| Anthony Basile | Constructing a “Directed Linkage Graph” for an entire system: The usefulness of exporting /var/db/pkg (VDB) information for utilities other than the Package Management System (PMS). |
| Diego E. Pettenò | LibreSSL: drop-in and ABI leakage |
| LibreSSL and the bundled libs hurdle | |
| LibreSSL is taking a beating, and that's good | |
| Gentoo Monthly Newsletter | Gentoo Monthly Newsletter: July 2014 |
| Paweł Hajdan, Jr. | Can your distro compile Chromium? |
| Recovering from removed libgcc_s.so.1 (and missing busybox) | |
| Rafael Goncalves Martins | Introducing pyoembed |
| Richard Freeman | Quick systemd-nspawn guide |
| Sven Vermeulen | Switching to new laptop |
| Some changes under the hood | |
| Gentoo Hardened July meeting |
Gentoo Monthly Newsletter - May 2014
Posted on June 2, 2014
by Markos Chandras
The May 2014 GMN issue is now available online.
This month on GMN:
- Interview with Gentoo developer Brian Dolbec (dol-sen)
- Samba 4, sys-power/upower updates, infrastructure hosting needs
- Latest Gentoo news, tips, interesting stats and much more.
Action required: Password reset on all Gentoo services
Posted on April 13, 2014
by Alex Legler
Recent versions of OpenSSL were found to be affected by an information disclosure vulnerability related to TLS heartbeats, nicknamed Heartbleed. It allows attackers to read up to 64kb of random server memory, possibly including passwords, session IDs or even private keys.
After the public disclosure on April 7, we have confirmed that several services provided by Gentoo Infrastructure were vulnerable as well. We have immediately updated the affected software, recreated private keys, reissued certificates, and invalidated all running user sessions. Despite these measures, we cannot exclude the possibility of attackers exploiting the issue during the time it was not publicly known to gain access to credentials or session IDs of our users. There are currently no indications this has happened.
However, to be safe, we are asking you to reset your passwords used for Gentoo services within the next 7 days. You need to take action if you have an account on one of the following sites:
- blogs.gentoo.org
- bugs.gentoo.org
- forums.gentoo.org
- wiki.gentoo.org
After 7 days, we will be removing all passwords to avoid abuse. For more information and the full announcement, visit infra-status.gentoo.org/notice/20140413-heartbleed.
Gentoo Monthly Newsletter - March 2014
Posted on April 1, 2014
by David Abbott
The March 2014 GMN issue is now available online.
This month on GMN:
- Interview with Gentoo developer Tom Wijsman (TomWij)
- Tracking the history of Gentoo: Gentoo Galaxy
- Latest Gentoo news, tips, interesting stats and much more.
Gentoo Monthly Newsletter - February 2014
Posted on March 1, 2014
by David Abbott
The February 2014 GMN issue is now available online.
This month on GMN:
- Interview with Gentoo developer Sven Vermeulen (swift)
- Latest Gentoo news, job openings, interesting stats and much more.
Gentoo Monthly Newsletter - January 2014
Posted on February 1, 2014
by David Abbott
The January 2014 GMN issue is now available online.
This month on GMN:
- Meet up with Gentoo developers and users at this years FOSDEM'14 event.
- Give back by helping the proxy-maintainers project.
- Latest Gentoo news, job openings, interesting stats and much more.
Gentoo Monthly Newsletter - December 2013
Posted on January 2, 2014
by Markos Chandras
The December 2013 GMN issue is now available online. This month on GMN:
- Interview with Sergey Popov. A Gentoo developer and the team leader of Qt, proxy-maintainers and desktop-effects teams.
- Overall Gentoo activity status with bugzilla, portage and developer statistics.
Gentoo Monthly Newsletter - November 2013
Posted on December 1, 2013
by Markos Chandras
The November 2013 GMN issue is now available online. This month on GMN:
- Interview with Richard Freeman. A Gentoo developer, Council and Trustees member.
- Gentoo as a development environment for newcomers.
- Overall Gentoo activity status with bugzilla, portage and developer statistics.
Imagination Technologies donates MIPS64 build systems
Posted on August 24, 2013
by Robin H. Johnson
Imagination Technologies has donated two MIPS64-based Ubiquiti ERLite-3 routers, plus resources to aid Gentoo in providing up-to-date root file system builds for MIPS.
Imagination Technologies is a global leader in multimedia, processor and communication technologies. The company creates and licenses market-leading IP solutions for graphics, video and vision, CPU/general purpose processing, multi-standard communications and connectivity, and cross-platform voice and video communications. Imagination's MIPS CPU cores and architectures range from solutions for ultra low-power 32-bit microcontrollers to high-performance 32/64-bit advanced applications and network processing. MIPS is supported by a broad ecosystem of tools and software including open source Linux distributions like Gentoo.
Older News
- Gentoo at LinuxTag 2013 in Berlin
- Gentoo at FOSSCOMM 2013
- Gentoo Linux releases 20121221 LiveDVD - End Of World Edition
- Miniconf: Gentoo on the OLPC XO-1.75
- 2012 Gentoo Screenshot Contest Results
- Gentoo Website survey 2012 launched
- Gentoo Screenshot Contest 2012
- Registration Now Open: Gentoo Miniconf 2012 in Prague, CZ
- x32 ABI release candidates
- ARM v6+ stages switching to hardfp
- Bootstrapping Awesome: Gentoo Miniconf 2012 in Prague, CZ
- Gentoo developer Jeff Horelick talks to the FLOSS Weekly podcast
- Gentoo at LinuxTag 2012 in Berlin
- Gentoo at FOSSCOMM 2012
- Google Summer of Code applications close April 6
- Gentoo Linux releases 12.1 LiveDVD
- Gentoo spotted on space station.
- Interview with Milan Kazarka
- Gentoo at SCALE 10x
|
Donate to support our development efforts. |
for its contents. This is a safe-cache copy of the original web site.